<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-CN" lang="zh-CN">
<head>
	<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
	<meta name="viewport" content="width=device-width, initial-scale=1.0">
	<meta name="keywords" content="SecWiki，维基，安全，资讯，专题，导航，RSS聚合，Ｗeb安全，Ｗeb安全，移动平台，二进制安全，恶意分析，网络安全，设备安全，运维技术，编程技术，书籍推荐">
	<title>SecWiki周刊（第181期)</title>
	<link rel="stylesheet" type="text/css" href="https://secwiki.b0.upaiyun.com/css/bootstrap.css"/>
    <link rel="stylesheet" type="text/css" href="https://secwiki.b0.upaiyun.com/css/styles.css" />
    <link rel="stylesheet" type="text/css" href="https://secwiki.b0.upaiyun.com/css/people.css" />
    <link rel="shortcut icon" href="https://secwiki.b0.upaiyun.com/img/favicon.ico">
	<meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <script src="//upcdn.b0.upaiyun.com/libs/jquery/jquery-1.8.3.min.js"></script>
</head>

<body>
<div class="navbar navbar-fixed-top"><div class="navbar-inner"><div class="container"><a class="btn btn-navbar" data-toggle="collapse" data-target="#yii_bootstrap_collapse_0"><span class="icon-bar"></span><span class="icon-bar"></span><span class="icon-bar"></span></a><a href="/index.php" class="brand"><img src="https://secwiki.b0.upaiyun.com/logo.jpg" alt="" /></a><div class="nav-collapse collapse" id="yii_bootstrap_collapse_0"><form class="navbar-search pull-right" action="/news/search">
         <input type="text" class="search-query span2" name="wd" placeholder="SecWiki">
        </form>
    	<ul id="yw0" class="nav"><li><a href="/index.php">首页</a></li><li><a href="/event">新闻</a></li><li><a href="/news">技术</a></li><li><a href="/skill">技能</a></li><li><a href="/topic">专题</a></li><li><a href="/book">书籍</a></li><li><a href="/user/members">成员</a></li><li><a href="/opml/index">聚合</a></li><li><a href="/tougao/create">投稿</a></li></ul></div></div></div></div>
<div class="container" id="page">
			<!-- breadcrumbs -->
	
    <div style="margin-left: 15px;">
	    <div class="row-fluid">
    <div id="content">
            <link rel="stylesheet" type="text/css" href="/css/mweekly.css"/>

<h5><strong>SecWiki周刊（第181期）</strong></h5>
<blockquote> 2017/08/14-2017/08/20</blockquote>
<section id="news">
    <div class="weeklydivide">
      <strong>安全资讯</strong>
    </div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>DOS攻击兵器库[Updated for 2017]<br><a target="_blank" href="https://www.520waf.com/2017/08/dos-attacks-free-dos-attacking-tools/">https://www.520waf.com/2017/08/dos-attacks-free-dos-attacking-tools/</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>在线DDoS平台剧增，中国已经黑客化？<br><a target="_blank" href="http://www.4hou.com/info/industry/7300.html">http://www.4hou.com/info/industry/7300.html</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>从XshellGhost事件谈供应链污染<br><a target="_blank" href="http://www.arkteam.net/?p=2621">http://www.arkteam.net/?p=2621</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>Rapid7 warns of Remote Desktop Protocol (RDP) exposure for millions of endpoints<br><a target="_blank" href="http://securityaffairs.co/wordpress/62004/hacking/rdp-exposure-report.html">http://securityaffairs.co/wordpress/62004/hacking/rdp-exposure-report.html</a></div><div class="single"><span id="tags">[法规]&nbsp;&nbsp;</span>关于印发《一流网络安全学院建设示范项目管理办法》的通知<br><a target="_blank" href="http://www.cac.gov.cn/2017-08/14/c_1121477715.htm">http://www.cac.gov.cn/2017-08/14/c_1121477715.htm</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>特朗普宣布升级美军网络司令部计划，加强国家网络安全防御体系 <br><a target="_blank" href="http://hackernews.cc/archives/13678">http://hackernews.cc/archives/13678</a></div><div class="single"><span id="tags">[事件]&nbsp;&nbsp;</span>HBO hack: a comprensive timeline <br><a target="_blank" href="https://www.owlcyber.com/blog/2017/hbo-hack-a-comprensive-timeline">https://www.owlcyber.com/blog/2017/hbo-hack-a-comprensive-timeline</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>美国法官裁决 LinkedIn 不能禁止创业公司访问公开账号数据<br><a target="_blank" href="http://www.solidot.org/story?sid=53466">http://www.solidot.org/story?sid=53466</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>安全预警：Xshell 5官方版本被植入后门，更新即中招<br><a target="_blank" href="http://www.4hou.com/info/news/7244.html">http://www.4hou.com/info/news/7244.html</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>美国防部的“Voltron”计划：利用AI挖掘军事软件漏洞<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI4MjA1MzkyNA==&amp;mid=2655295637&amp;idx=2&amp;sn=8883a809a7045c8da24f324288b90136&amp;scene=0#wechat_redirect">https://mp.weixin.qq.com/s?__biz=MzI4MjA1MzkyNA==&amp;mid=2655295637&amp;idx=2&amp;sn=8883a809a7045c8da24f324288b90136&amp;scene=0#wechat_redirect</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>从朝鲜攻击事件看间谍活动主谋间的关系<br><a target="_blank" href="http://www.4hou.com/info/news/7119.html">http://www.4hou.com/info/news/7119.html</a></div></section><section id="news">
    <div class="weeklydivide">
      <strong>安全技术</strong>
    </div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>Openrasp： 百度开源自适应安全解决方案<br><a target="_blank" href="http://rasp.baidu.com/">http://rasp.baidu.com/</a></div><div class="single"><span id="tags">[数据挖掘]&nbsp;&nbsp;</span>Dawn Song AI安全《AI and Security》PPT<br><a target="_blank" href="https://www.microsoft.com/en-us/research/wp-content/uploads/2017/07/AI_and_Security_Dawn_Song.pdf">https://www.microsoft.com/en-us/research/wp-content/uploads/2017/07/AI_and_Security_Dawn_Song.pdf</a></div><div class="single"><span id="tags">[会议]&nbsp;&nbsp;</span>人工智能真的会成为安全行业的未来吗？CSS 2017大会有感<br><a target="_blank" href="http://www.freebuf.com/news/144470.html">http://www.freebuf.com/news/144470.html</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>Office CVE-2017-8570远程代码执行漏洞复现<br><a target="_blank" href="http://www.freebuf.com/vuls/144054.html">http://www.freebuf.com/vuls/144054.html</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>简单方法避免被安装后门<br><a target="_blank" href="http://www.weibo.com/ttarticle/p/show?id=2309404140771757432459">http://www.weibo.com/ttarticle/p/show?id=2309404140771757432459</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>nullsecurity 团队的安全工具(扫描/利用/后门/记录/清除)<br><a target="_blank" href="https://github.com/nullsecuritynet/tools">https://github.com/nullsecuritynet/tools</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>Python爬虫项目整理<br><a target="_blank" href="https://segmentfault.com/p/1210000009117809/read">https://segmentfault.com/p/1210000009117809/read</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>利用 ew 轻松穿透目标多级内网<br><a target="_blank" href="https://klionsec.github.io/2017/08/05/ew-tunnel/">https://klionsec.github.io/2017/08/05/ew-tunnel/</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>Python 编写的 IP/TCP/UDP数据包分析及解析<br><a target="_blank" href="https://github.com/tanjiti/packet_analysis">https://github.com/tanjiti/packet_analysis</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>windows提权系列上篇<br><a target="_blank" href="http://mp.weixin.qq.com/s/uOArxXIfcI4fjqnF9BDJGA">http://mp.weixin.qq.com/s/uOArxXIfcI4fjqnF9BDJGA</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>你的 Java web 配置安全吗？<br><a target="_blank" href="http://mp.weixin.qq.com/s?__biz=MzIzMzgxOTQ5NA==&amp;mid=100000318&amp;idx=1&amp;sn=9011af3e3968e0d87499605ef1a68291&amp;chksm=68fe9e375f8917213297855bd9e1ab1203ae4c9b0b5ca351de7b2c0f7a7799bd1f4843cd13f4#rd">http://mp.weixin.qq.com/s?__biz=MzIzMzgxOTQ5NA==&amp;mid=100000318&amp;idx=1&amp;sn=9011af3e3968e0d87499605ef1a68291&amp;chksm=68fe9e375f8917213297855bd9e1ab1203ae4c9b0b5ca351de7b2c0f7a7799bd1f4843cd13f4#rd</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>如何在Google Cloud上安装Kali Linux<br><a target="_blank" href="http://www.osshell.com/?p=99">http://www.osshell.com/?p=99</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>NESSUS的高级扫描方法<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-26046-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-26046-1-1.html?from=sec</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>Chrome XSS Auditor – SVG Bypass<br><a target="_blank" href="https://brutelogic.com.br/blog/chrome-xss-auditor-svg-bypass/">https://brutelogic.com.br/blog/chrome-xss-auditor-svg-bypass/</a></div><div class="single"><span id="tags">[会议]&nbsp;&nbsp;</span>WOOT &#039;17 Workshop Program PPT 下载<br><a target="_blank" href="https://www.usenix.org/conference/woot17/workshop-program">https://www.usenix.org/conference/woot17/workshop-program</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>Fastener: Web版在线Webshell管理工具<br><a target="_blank" href="https://github.com/BlackHole1/Fastener">https://github.com/BlackHole1/Fastener</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>信息安全意识<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI5MDQ2NjExOQ==&amp;mid=2247484745&amp;idx=1&amp;sn=d632fd75e084ff9db77ddcef53cc11b6&amp;chksm=ec1e3561db69bc779178d44745c593b2d2ed7fd8bc748d505896adcdde39740429b2b62ec95e#rd">https://mp.weixin.qq.com/s?__biz=MzI5MDQ2NjExOQ==&amp;mid=2247484745&amp;idx=1&amp;sn=d632fd75e084ff9db77ddcef53cc11b6&amp;chksm=ec1e3561db69bc779178d44745c593b2d2ed7fd8bc748d505896adcdde39740429b2b62ec95e#rd</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>PassiveScanner: 基于Mitmproxy和Arachni的被动式扫描器<br><a target="_blank" href="https://github.com/jjf012/PassiveScanner">https://github.com/jjf012/PassiveScanner</a></div><div class="single"><span id="tags">[文档]&nbsp;&nbsp;</span>逆向工程恶意软件入门（基础篇）<br><a target="_blank" href="http://www.4hou.com/reverse/7258.html">http://www.4hou.com/reverse/7258.html</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>中科院网络空间安全硕士课程列表-[自学路线参考]<br><a target="_blank" href="http://scs.ucas.ac.cn/index.php/zh-cn/jyjx/jwgl/kcsz/yjs">http://scs.ucas.ac.cn/index.php/zh-cn/jyjx/jwgl/kcsz/yjs</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>windows_pentest_tools: Windows 渗透测试工具集<br><a target="_blank" href="https://github.com/xiaoxiaoleo/windows_pentest_tools">https://github.com/xiaoxiaoleo/windows_pentest_tools</a></div><div class="single"><span id="tags">[移动安全]&nbsp;&nbsp;</span>Android漏洞扫描工具Code Arbiter<br><a target="_blank" href="https://tech.meituan.com/Android-Code-Arbiter.html">https://tech.meituan.com/Android-Code-Arbiter.html</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>银行卡quickpass闪付芯片通过EVM/PBOC读取隐私信息<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-25955-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-25955-1-1.html?from=sec</a></div><div class="single"><span id="tags">[比赛]&nbsp;&nbsp;</span>Pwnhub 第一次线下沙龙竞赛Web题解析 <br><a target="_blank" href="https://www.leavesongs.com/PENETRATION/pwnhub-first-shalon-ctf-web-writeup.html">https://www.leavesongs.com/PENETRATION/pwnhub-first-shalon-ctf-web-writeup.html</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>ZentaoPMS任意文件上传漏洞复现<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-26016-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-26016-1-1.html?from=sec</a></div><div class="single"><span id="tags">[新闻]&nbsp;&nbsp;</span>弹性安全网络 -- 构建下一代安全的互联网<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MjM5NzA4ODc0MQ==&amp;mid=2648628796&amp;idx=1&amp;sn=00a9a13e931024d5ebe62ba81e234a58&amp;scene=0#wechat_redirect">https://mp.weixin.qq.com/s?__biz=MjM5NzA4ODc0MQ==&amp;mid=2648628796&amp;idx=1&amp;sn=00a9a13e931024d5ebe62ba81e234a58&amp;scene=0#wechat_redirect</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>看我如何收集全网IP的whois信息<br><a target="_blank" href="http://mp.weixin.qq.com/s/qz0b42DKhgo1sfitcUKhtQ">http://mp.weixin.qq.com/s/qz0b42DKhgo1sfitcUKhtQ</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>Turla APT actor refreshes KopiLuwak JavaScript backdoor for use in G20-themed attack <br><a target="_blank" href="https://www.proofpoint.com/us/threat-insight/post/turla-apt-actor-refreshes-kopiluwak-javascript-backdoor-use-g20-themed-attack">https://www.proofpoint.com/us/threat-insight/post/turla-apt-actor-refreshes-kopiluwak-javascript-backdoor-use-g20-themed-attack</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>Malicious_Domain_Whois: 非法域名挖掘与画像系统<br><a target="_blank" href="https://github.com/h-j-13/Malicious_Domain_Whois?from=timeline">https://github.com/h-j-13/Malicious_Domain_Whois?from=timeline</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>Forensic analysis of Telegram Messenger for Windows Phone<br><a target="_blank" href="http://www.sciencedirect.com/science/article/pii/S1742287617301032">http://www.sciencedirect.com/science/article/pii/S1742287617301032</a></div><div class="single"><span id="tags">[移动安全]&nbsp;&nbsp;</span>微信Netting-QRLJacking分析利用-扫我二维码获取你的账号权限<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-25923-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-25923-1-1.html?from=sec</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>内网主机发现技巧补充<br><a target="_blank" href="http://mp.weixin.qq.com/s/l-Avt72ajCIo5GdMEwVx7A">http://mp.weixin.qq.com/s/l-Avt72ajCIo5GdMEwVx7A</a></div><div class="single"><span id="tags">[无线安全]&nbsp;&nbsp;</span>[智能硬件安全] 浅谈SS7七号信令劫持<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-25983-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-25983-1-1.html?from=sec</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>XShell后门DNS Tunnel编码分析<br><a target="_blank" href="http://bobao.360.cn/learning/detail/4258.html?from=wiki">http://bobao.360.cn/learning/detail/4258.html?from=wiki</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>DockerFinder-Multi-attribute search of Docker images<br><a target="_blank" href="http://black.di.unipi.it/dockerfinder">http://black.di.unipi.it/dockerfinder</a></div><div class="single"><span id="tags">[工具]&nbsp;&nbsp;</span>端口扫描那些事<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI5MDQ2NjExOQ==&amp;mid=2247484812&amp;idx=1&amp;sn=7d894b50b3947142fbfa3a4016f748d5&amp;chksm=ec1e35a4db69bcb2acfe7ecb3b0cd1d366c54bfa1feaafc62c4290b3fd2eddab9aa95a98f041#rd">https://mp.weixin.qq.com/s?__biz=MzI5MDQ2NjExOQ==&amp;mid=2247484812&amp;idx=1&amp;sn=7d894b50b3947142fbfa3a4016f748d5&amp;chksm=ec1e35a4db69bcb2acfe7ecb3b0cd1d366c54bfa1feaafc62c4290b3fd2eddab9aa95a98f041#rd</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>Darknet Markets Category 暗网市场统计列表[在线/下线]<br><a target="_blank" href="https://darkwebnews.com/category/darknet-markets/">https://darkwebnews.com/category/darknet-markets/</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>关于密码字典那些事<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI5MDQ2NjExOQ==&amp;mid=2247484763&amp;idx=1&amp;sn=9c2d3854b2e699f514fabc00374f5591&amp;chksm=ec1e3573db69bc655e38eac9da44a5e41a26d217e7094eef024c4bbdfcaf03e32006d90fccb9#rd">https://mp.weixin.qq.com/s?__biz=MzI5MDQ2NjExOQ==&amp;mid=2247484763&amp;idx=1&amp;sn=9c2d3854b2e699f514fabc00374f5591&amp;chksm=ec1e3573db69bc655e38eac9da44a5e41a26d217e7094eef024c4bbdfcaf03e32006d90fccb9#rd</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>走到哪黑到哪——Android渗透测试三板斧<br><a target="_blank" href="http://bobao.360.cn/learning/detail/4254.html">http://bobao.360.cn/learning/detail/4254.html</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>msdtc后门的实现思路<br><a target="_blank" href="http://www.4hou.com/system/6890.html">http://www.4hou.com/system/6890.html</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>kali Linux 上编译并使用RFID核弹——proxmark3<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-25896-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-25896-1-1.html?from=sec</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>轻松审计代码安全性，Windows 10有妙招<br><a target="_blank" href="http://www.4hou.com/system/7264.html">http://www.4hou.com/system/7264.html</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>案例丨某省级政务云大数据安全平台建设思路<br><a target="_blank" href="http://www.aqniu.com/learn/27387.html">http://www.aqniu.com/learn/27387.html</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>postgresql数据库利用方式<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI5MDQ2NjExOQ==&amp;mid=2247484788&amp;idx=1&amp;sn=8a53b1c64d864cd01bab095d97a17715&amp;chksm=ec1e355cdb69bc4a2535bc1a053bfde3ec1838d03936ba8e44156818e91bbec9b5b04a744005#rd">https://mp.weixin.qq.com/s?__biz=MzI5MDQ2NjExOQ==&amp;mid=2247484788&amp;idx=1&amp;sn=8a53b1c64d864cd01bab095d97a17715&amp;chksm=ec1e355cdb69bc4a2535bc1a053bfde3ec1838d03936ba8e44156818e91bbec9b5b04a744005#rd</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>sectoolset -- 搜集的Github关于安全工具集合<br><a target="_blank" href="https://github.com/bollwarm/sectoolset">https://github.com/bollwarm/sectoolset</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>从瑞士军刀到变形金刚--XSS攻击面拓展 <br><a target="_blank" href="https://xianzhi.aliyun.com/forum/read/1988.html">https://xianzhi.aliyun.com/forum/read/1988.html</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>用安卓手机获取锁屏下Windows电脑的登陆密码hash<br><a target="_blank" href="http://5alt.me/2016/10/%E7%94%A8%E5%AE%89%E5%8D%93%E6%89%8B%E6%9C%BA%E8%8E%B7%E5%8F%96%E9%94%81%E5%B1%8F%E4%B8%8Bwindows%E7%94%B5%E8%84%91%E7%9A%84%E7%99%BB%E9%99%86%E5%AF%86%E7%A0%81hash/">http://5alt.me/2016/10/%E7%94%A8%E5%AE%89%E5%8D%93%E6%89%8B%E6%9C%BA%E8%8E%B7%E5%8F%96%E9%94%81%E5%B1%8F%E4%B8%8Bwindows%E7%94%B5%E8%84%91%E7%9A%84%E7%99%BB%E9%99%86%E5%AF%86%E7%A0%81hash/</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>Xshell高级后门完整分析报告<br><a target="_blank" href="https://security.tencent.com/index.php/blog/msg/120">https://security.tencent.com/index.php/blog/msg/120</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>WebSocket应用安全问题分析<br><a target="_blank" href="https://security.tencent.com/index.php/blog/msg/119">https://security.tencent.com/index.php/blog/msg/119</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>SecWiki周刊（第180期)<br><a target="_blank" href="https://www.sec-wiki.com/weekly/180">https://www.sec-wiki.com/weekly/180</a></div><div class="single"><span id="tags">[无线安全]&nbsp;&nbsp;</span> [智能硬件安全] HackRF 无线电操作教程/3G物联网中某些不可描述功能<br><a target="_blank" href="https://bbs.ichunqiu.com/thread-25771-1-1.html?from=sec">https://bbs.ichunqiu.com/thread-25771-1-1.html?from=sec</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>企业安全建设之数据库安全（上）<br><a target="_blank" href="https://mp.weixin.qq.com/s/EZ71SU21tOa35VQayH8Hfw">https://mp.weixin.qq.com/s/EZ71SU21tOa35VQayH8Hfw</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>DNS代理服务器，支持记录log到数据库中<br><a target="_blank" href="https://zhuanlan.zhihu.com/p/28526105">https://zhuanlan.zhihu.com/p/28526105</a></div><div class="single"><span id="tags">[Web安全]&nbsp;&nbsp;</span>如何在目标内网中发现更多存活主机<br><a target="_blank" href="https://klionsec.github.io/2016/06/25/atived-machine-discovnery/">https://klionsec.github.io/2016/06/25/atived-machine-discovnery/</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>A Quick Look at a New KONNI RAT Variant <br><a target="_blank" href="https://blog.fortinet.com/2017/08/15/a-quick-look-at-a-new-konni-rat-variant">https://blog.fortinet.com/2017/08/15/a-quick-look-at-a-new-konni-rat-variant</a></div><div class="single"><span id="tags">[运维安全]&nbsp;&nbsp;</span>基于ELK的IIS日志可视化<br><a target="_blank" href="http://www.jianshu.com/p/6d7b7a5eec8f?utm_source=desktop&amp;utm_medium=timeline">http://www.jianshu.com/p/6d7b7a5eec8f?utm_source=desktop&amp;utm_medium=timeline</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>Linux下容易被忽视的那些命令用法<br><a target="_blank" href="https://segmentfault.com/p/1210000010668099/read">https://segmentfault.com/p/1210000010668099/read</a></div><div class="single"><span id="tags">[其它]&nbsp;&nbsp;</span>教你如何使用分组密码对shellcode中的windows api字符串进行加密<br><a target="_blank" href="http://www.4hou.com/info/news/7070.html">http://www.4hou.com/info/news/7070.html</a></div><div class="single"><span id="tags">[数据挖掘]&nbsp;&nbsp;</span>一文总览数据科学全景：定律、算法、问题类型<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI1MjQ2OTQ3Ng==&amp;mid=2247485560&amp;idx=1&amp;sn=a6c71429c463263170489e895c52223d&amp;scene=0#wechat_redirect">https://mp.weixin.qq.com/s?__biz=MzI1MjQ2OTQ3Ng==&amp;mid=2247485560&amp;idx=1&amp;sn=a6c71429c463263170489e895c52223d&amp;scene=0#wechat_redirect</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>在Ubuntu服务器上使用Chrome Headless<br><a target="_blank" href="https://jiayi.space/post/zai-ubuntufu-wu-qi-shang-shi-yong-chrome-headless">https://jiayi.space/post/zai-ubuntufu-wu-qi-shang-shi-yong-chrome-headless</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>Booters with Chinese Characteristics: The Rise of Chinese Online DDoS Platforms<br><a target="_blank" href="http://blog.talosintelligence.com/2017/08/chinese-online-ddos-platforms.html">http://blog.talosintelligence.com/2017/08/chinese-online-ddos-platforms.html</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>pylogin系列之畅言登录评论接口分析<br><a target="_blank" href="https://mp.weixin.qq.com/s?__biz=MzI1NTUzMjUzMQ==&amp;mid=2247483727&amp;idx=1&amp;sn=aadacf8866fdb5b6ce3d49649560eb9a&amp;scene=0#wechat_redirect">https://mp.weixin.qq.com/s?__biz=MzI1NTUzMjUzMQ==&amp;mid=2247483727&amp;idx=1&amp;sn=aadacf8866fdb5b6ce3d49649560eb9a&amp;scene=0#wechat_redirect</a></div><div class="single"><span id="tags">[视频]&nbsp;&nbsp;</span>Cyber Grand Challenge: The Analysis   CGC 决赛总结视频<br><a target="_blank" href="https://www.youtube.com/watch?v=SYYZjTx92KU">https://www.youtube.com/watch?v=SYYZjTx92KU</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>谈谈HTML5本地存储——WebStorage <br><a target="_blank" href="http://syean.cn/2017/08/15/%E8%B0%88%E8%B0%88HTML5%E6%9C%AC%E5%9C%B0%E5%AD%98%E5%82%A8%E2%80%94%E2%80%94WebStorage/">http://syean.cn/2017/08/15/%E8%B0%88%E8%B0%88HTML5%E6%9C%AC%E5%9C%B0%E5%AD%98%E5%82%A8%E2%80%94%E2%80%94WebStorage/</a></div><div class="single"><span id="tags">[设备安全]&nbsp;&nbsp;</span>某智能设备固件解密 <br><a target="_blank" href="http://5alt.me/2017/08/%E6%9F%90%E6%99%BA%E8%83%BD%E8%AE%BE%E5%A4%87%E5%9B%BA%E4%BB%B6%E8%A7%A3%E5%AF%86/">http://5alt.me/2017/08/%E6%9F%90%E6%99%BA%E8%83%BD%E8%AE%BE%E5%A4%87%E5%9B%BA%E4%BB%B6%E8%A7%A3%E5%AF%86/</a></div><div class="single"><span id="tags">[取证分析]&nbsp;&nbsp;</span>tornado: All in one MITM tool<br><a target="_blank" href="https://github.com/rebellionil/tornado">https://github.com/rebellionil/tornado</a></div><div class="single"><span id="tags">[恶意分析]&nbsp;&nbsp;</span>Inside the Kronos malware<br><a target="_blank" href="https://blog.malwarebytes.com/cybercrime/2017/08/inside-kronos-malware/">https://blog.malwarebytes.com/cybercrime/2017/08/inside-kronos-malware/</a></div><div class="single"><span id="tags">[编程技术]&nbsp;&nbsp;</span>利用WinDbg和wscript.exe分析JavaScript脚本<br><a target="_blank" href="http://www.4hou.com/technology/7261.html">http://www.4hou.com/technology/7261.html</a></div><div class="single"><span id="tags">[漏洞分析]&nbsp;&nbsp;</span>Exploring Windows virtual memory management<br><a target="_blank" href="http://www.triplefault.io/2017/08/exploring-windows-virtual-memory.html">http://www.triplefault.io/2017/08/exploring-windows-virtual-memory.html</a></div></section>
<section id="news">
        <pre style="margin-top: 15px; margin-bottom: 15px; padding: 6px 10px; max-width: 100%; color: rgb(62, 62, 62); background-color: rgb(255, 255, 255); -webkit-print-color-adjust: exact; border-width: 1px; border-style: solid; border-color: rgb(204, 204, 204); font-size: 13px; line-height: 19px; overflow: auto; border-radius: 3px; box-sizing: border-box !important; word-wrap: break-word !important;"><code class="" style="max-width: 100%; -webkit-print-color-adjust: exact; border-width: initial; border-style: none; border-color: initial; background-color: transparent; border-radius: 3px; box-sizing: border-box !important; word-wrap: break-word !important;">-----微信ID：SecWiki-----
SecWiki，5年来一直专注安全技术资讯分析！
SecWiki：https://www.sec-wiki.com</code></pre>
    <p style="max-width: 100%; min-height: 1em; color: rgb(62, 62, 62); font-size: 16px; white-space: normal; background-color: rgb(255, 255, 255); box-sizing: border-box !important; word-wrap: break-word !important;"><span style="max-width: 100%; font-size: 14px; box-sizing: border-box !important; word-wrap: break-word !important;">本期原文地址:<span style="max-width: 100%; font-family: Helvetica, arial, sans-serif; box-sizing: border-box !important; word-wrap: break-word !important;">&nbsp;<a href="https://www.sec-wiki.com/weekly/181">SecWiki周刊(第181期)</a></span><br style="max-width: 100%; box-sizing: border-box !important; word-wrap: break-word !important;"></span></p>
</section>
    </div><!-- content -->
</div>
    </div>
</div>

<div id="footer" class="footer">
		<div class="container"  style="margin-top: 5px;">
			<div class="span3">
				<div class="one-third column">
					<h5 class="title">
					<a target="_blank" href="/about/index">最新公告</a>						<span class="line"></span>
					</h5>
					<p>
						<a href='http://www.sec-wiki.com/about/donate'>2016-01-01 打赏功能开通</a><br>
						<a href='http://www.sec-wiki.com/about/join'>2015-01-05 如何加入SecWiki</a><br>
						<a href='http://www.sec-wiki.com/about/submit'>2014-08-08 如何快捷提交资讯</a><br>
						<a href='http://www.sec-wiki.com/about/index'>2012-07-01 关于SecWiki</a><br>
				</div>
			</div>

			<div class="span5">
				<div class="one-third column">
					<h5 class="title">
						<a target="_blank" href="/nav/index">友情链接</a>						<span class="line"></span>
					</h5>
					<p>
						<a href='https://www.secsilo.com/'>安全沙漏</a>&nbsp;
						<a href='http://www.freebuf.com/'>Freebuf</a>&nbsp;
						<a href='http://www.anquanquan.info/'>安全圈</a>&nbsp;
						<a href='http://navisec.it/'>Navisec</a>&nbsp;
                        <a href='http://das.scusec.org'>小黑屋</a>&nbsp;
                        <a href='http://www.polaris-lab.com/'>勾陈Lab</a>
                        <br>
						<a href='http://www.ijiandao.com'>网络尖刀</a>&nbsp;
                        <a href='http://www.shellpub.com/'>ShellPub</a>&nbsp;
                        <a href='http://www.secpulse.com/?secwiki'>SecPulse</a>&nbsp;
                        <a href='https://www.secquan.org/'>圈子</a>
                        <a href='http://bluereader.org/'>深蓝阅读</a>&nbsp;<br>
                        <a href='http://www.bugbank.cn/'>漏洞银行</a>
                        <a href='http://bobao.360.cn/'>安全客</a>
                        <a href='http://www.secfree.com/'>指尖安全</a>
                        <a href='https://www.easyaq.com/'>E安全</a>
                        <a href='http://www.vipread.com/'>安全slide</a>

                        <a href="/link">更多</a>
					</p>
				</div>
			</div>

			<div class="span2">
			    <div class="one-third column">
					<h5 class="title">
					<a target="_blank" href="/about/index">SecWiki公众号</a>						<span class="line"></span>
					</h5>
					<div style="margin-top:15px; width: 90px; height: 90px;">
						<img src="https://secwiki.b0.upaiyun.com/weixin.jpg">
					</div>
				</div>
			</div>

			<div class="span2">
				<div class="one-third column">
					<h5 class="title">
					<a target="_blank" href="/about/donate">安全学术圈</a>					<span class="line"></span>
					</h5>
					<div style="margin-top:15px; width: 90px; height: 90px;">
						<img src="https://secwiki.b0.upaiyun.com/secquan.jpg">
					</div>
				</div>
			</div>

		</div>
		<div class="container" style="margin-top:5px;margin-bottom: 10px;">
			<div class="span9">
					Copyright &copy;
					2019                    琼ICP备16003361号-4
                    SecWiki
					<a href="/news/rss">
						<img src="/img/rss.gif" border="0" width="36px" height="14px" alt="订阅SecWiki">
					</a>
					<a href="https://www.upyun.com/">
						<img src="https://secwiki.b0.upaiyun.com/upyun.png" width="80" border="0" alt="UPYUN">
					</a>
					<a href="http://www.vultr.com/?ref=6885244">
						<img src="https://secwiki.b0.upaiyun.com/vultr.png" width="100" border="0" alt="vultr">
					</a>&nbsp;&nbsp;
			</div>
		</div>
</div><!-- footer -->
<div id="csswithjs">
        <script type="text/javascript">
            var _bdhmProtocol = (("https:" == document.location.protocol) ? " https://" : " http://");
            document.write(unescape("%3Cscript src='" + _bdhmProtocol + "hm.baidu.com/h.js%3Fbad84ea1f314383f8da7949aad5c2199' type='text/javascript'%3E%3C/script%3E"));
    </script>
</div>
<script type="text/javascript" src="https://secwiki.b0.upaiyun.com/js/bs.min.js"></script>
<script type="text/javascript">
/*<![CDATA[*/
jQuery(function($) {
jQuery('[data-toggle=popover]').popover();
jQuery('body').tooltip({"selector":"[data-toggle=tooltip]"});
jQuery('#yii_bootstrap_collapse_0').collapse({'parent':false,'toggle':false});
});
/*]]>*/
</script>
</body>
<!-- page -->
</html>
